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DETAILED ACTION 

Information Disclosure Statement 

The information disclosure statements filed August 19, 2003 and March 
24, 2005 have been placed in the application file and the information referred to 
therein has been considered as to the merits. 

Claim Rejections - 35 USC § 102 

The following is a quotation of the appropriate paragraphs of 35 

U.S.C. 102 that form the basis for the rejections under this section made in this 

Office action: 

A person shall be entitled to a patent unless - 

(e) the invention was described in (1) an application for patent, published under section 
122(b), by another filed in the United States before the invention by the applicant for patent or 
(2) a patent granted on an application for patent by another filed in the United States before 
the invention by the applicant for patent, except that an international application filed under 
the treaty defined in section 351(a) shall have the effects for purposes of this subsection of an 
application filed in the United States only if the international application designated the United 
States and was published under Article 21(2) of such treaty in the English language. 

Claims 1 , 2, 4-9, 1 1 , 21 , 22, 24-29, 31 , 41 , 42, 44-49 and 51 are rejected 
under 35 U.S.C. 102(e) as being anticipated by US 7,134,022 granted to Flyntz 
etal. 

Regarding claim 1, Flyntz meets the claimed limitations as follows: 
"A method of implementing a data access control facility, said method 
comprising: assigning personally identifying information (Pll) classification labels 
to Pll data objects, wherein a Pll data object has one Pll classification label 
assigned thereto; defining at least one Pll purpose serving function set (PSFS) 
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comprising a list of application functions that read or write PI I data objects; and 
assigning a Pll classification label to each PSFS, wherein a Pll data object is 
only read accessible via an application function of a Pll PSFS having a Pll 
classification label that is equal to or a proper subset of the Pll classification label 
of the Pll data object." see column 1 , line 49 to column 3, line 1 0; column 4, line 
26 to column 5, line 34; column 6, line 34 to column 7, line 21 and Figure 1 . 

Regarding claim 2, Flyntz meets the claimed limitations as follows: 
"The method of claim 1 , wherein a Pll data object. is write accessible by an 
application function of a Pll PSFS having a Pll classification label that is equal to 
or dominant of the Pll classification label of the Pll data object." see column 1, 
line 49 to column 3, line 10; column 4, line 26 to column 5, line 34; column 6, line 
34 to column 7, line 21 and Figure 1 . 

Regarding claim 4, Flyntz meets the claimed limitations as follows: 
"The method of claim 1 , further comprising identifying a user invoking a particular 
function of the data access control facility, and assigning a Pll clearance set to 
the identified user, wherein the Pll clearance set comprises a list of one or more 
Pll classification labels for the identified user." see column 4, lines 26-38 and 
Figure 1. 

Regarding claim 5, Flyntz meets the claimed limitations as follows: 
"The method of claim 1 , wherein the Pll classification label assigned to the Pll 
data object includes an identification of an owner of the Pll data object." See 
column 6, lines 21 and Figure 1. 

Regarding claim 6, Flyntz meets the claimed limitations as follows: 
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"The method of claim 1, wherein the Pll classification label assigned to the Pll 
data object includes an indication of at least one purpose for which the data 
object may be used." see column 1 , line 49 to column 3, line 1 0; column 4, line 
26 to column 5, line 34; column 6, line 34 to column 7, line 21 and Figure 1. 

Regarding claim 7, Flyntz meets the claimed limitations as follows: 
"The method of claim 1, further comprising initially defining Pll purposes within an 
enterprise to use the data access control facility, and employing the Pll purposes 
in defining the Pll classification labels assigned to the Pll data objects and 
assigned to the at least one PSFS." see column 1 , line 49 to column 3, line 10; 
column 4, line 26 to column 5, line 34; column 6, line 34 to column 7, line 21 and 
Figure 1 . 

Regarding claim 8, Flyntz meets the claimed limitations as follows: 
"A data access control method comprising: (i) invoking, by a user of a data 
access control facility, a particular function, said data access control facility 
having personally identifying information (Pll) classification labels assigned to Pll 
data objects and at least one Pll purpose serving function set (PSFS) including a 
list of application functions that read, write or reclassify Pll data objects, and 
having a Pll classification label assigned thereto, and wherein the user of the 
data access control facility has assigned thereto a Pll clearance set, the Pll 
clearance set for the user comprising a list containing at least one Pll 
classification label; (ii) determining whether the particular function is defined to a 
Pll PSFS of the at least one Pll PSFS of the data access control facility, and if 
so, determining whether the user's Pll clearance set includes a Pll classification 
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label matching the Pll classification label assigned to that Pll PSFS, and if so, 
allowing access to the particular function; and (iii) determining whether the user 
is permitted access to a selected data object to perform the particular function." 
see column 1, line 49 to column 3, line 10; column 4, line 26 to column 5, line 34; 
column 6, line 34 to column 7, line 21 and Figure 1 . 

Regarding claim 9, Flyntz meets the claimed limitations as follows: 
"The data access control method of claim 8, further comprising, prior to said 
invoking, establishing a process within an operating system under security 
control of the data access control facility, and wherein said invoking occurs within 
said established process." see column 1, line 49 to column 3, line 10; column 4, 
line 26 to column 5, line 34; column 6, line 34 to column 7, line 21 and Figure 1. 

Regarding claim 1 1 , Flyntz meets the claimed limitations as follows: 
"The data access control method of claim 9, wherein said determining (iii) 
comprises determining whether the selected data object comprises a Pll data 
object, and if so, verifying that the user's particular function is defined to a Pll 
PSFS of the at least one Pll PSFS of the data access control facility, and if not, 
denying access to the selected data object." see column 1 , line 49 to column 3, 
line 10; column 4, line 26 to column 5, line 34; column 6, line 34 to column 7, line 
21 and Figure 1. 

Claims 21, 22, and 24-27 are system claims that are substantially equivalent to 
method claims 1, 2, and 4-7. Therefore claims 21, 22, and 24-27 are rejected by 
a similar rationale. 
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Claims 28, 29, and 31 are system claims that are substantially equivalent to 
method claims 8, 9, and 1 1 . Therefore claims 28, 29, and 31 are rejected by a 
similar rationale. 

Claims 41 , 42, and 44-47 are claims to a computer readable storage medium 
embodying the executable instructions for performing the steps of method claims 
1 , 2, and 4-7. Therefore claims 41 , 42, and 44-47 are rejected by a similar 
rationale. 

Claims 48, 49, and 51 are claims to a computer readable storage medium 
embodying the executable instructions for performing the steps of method claims 
8, 9, and 1 1 . Therefore claims 48, 49, and 51 are rejected by a similar rationale. 

Allowable Subject Matter 

Claims 3, 10, 12-20, 23, 30, 32-40, 43, 50 and 52-60 are objected to as 
being dependent upon a rejected base claim, but would be allowable if rewritten 
in independent form including all of the limitations of the base claim and any 
intervening claims. 

The following is a statement of reasons for the indication of allowable 
subject matter: 

With respect to claims 3, 23, and 43, the cited prior art fails to specifically 
teach wherein the PI I data object may be write accessible by an application 
function of a Pll PSFS having a list of Pll reclassifications which are allowed to 
thatPIIPSFS. 
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With respect to claims 10, 30, and 50, the cited prior art fails to specifically 
teach determining (ii) further comprises denying access to the particular function 
if the particular function is not defined to a Pll PSFS of the data access control 
facility, and a current process label (CPL) has been previously set for the 
established process. 

With respect to claims 12, 13, 32, 33, 52, and 53, the cited prior art fails to 
specifically teach determining (iii) further comprises determining whether a 
current process label (CPL) has been set for the established process if the 
selected data object is other than a Pll data object, and if not, rendering an 
access decision to the selected data object via discretionary access control 
checking. 

With respect to claims 14, 34, and 54, the cited prior art fails to specifically 
teach determining (iii) further comprises determining whether the particular 
function comprises a read operation, and if so, determining whether the Pll 
classification label assigned to the Pll PSFS to which the particular function is 
defined is equal to or a proper subset of a Pll classification label associated with 
the selected data object, and if not, denying access to the selected data object, 
and if so, adding the Pll classification label of the selected data object to a 
current process label (CPL) list for the established process. 

With respect to claims 15-17, 35-37, and 55-57, the cited prior art fails to 
specifically teach determining (iii) further comprises determining that the 
particular function is other than a read operation, and when so, determining 
whether a current process label (CPL) list for the established process exists, and 
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if not, allowing an access decision to the selected data object to proceed via 
discretionary access control checking. 

With respect to claims 18-20, 38-40, and 58-60, the cited prior art fails to 
specifically teach providing a current process label (CPL) list for the established 
process, the CPL list comprising a dynamic list of the Pll classification labels of 
each Pll data object read within the established process. 

Conclusion 

The prior art made of record and not relied upon is considered pertinent to 
applicant's disclosure. 

A. Weller et al (US 20040225883) discloses a method for providing levels 
of security in a communication system. 

B. Leersen et al (US 20040187020) discloses a method for granular 
access control to a communications system. 

C. Rodriquez et al (US 7,093,298) discloses an apparatus for object 
security and management. 

D. Van Dyke et al (US 6,412,070) discloses a method for controlling 
access to objects in a computing environment. 

E. Rozen et al (US 6,073,106) discloses a method of controlling access to 
personal information. 

F. Kuhn (US 6,023,765) discloses a role-based access control system. 

G. Howell et al (US 5,276,901) discloses a system for controlling group 
access to objects. 
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H. Covey (US 4,926,476) discloses method for secure execution untrusted 
software. 

Any inquiry concerning this communication or earlier communications from 
the examiner should be directed to Matthew B. Smithers whose telephone 
number is (571) 272-3876. The examiner can normally be reached on Monday- 
Friday (8:00-4:30) EST. 

If attempts to reach the examiner by telephone are unsuccessful, the 
examiner's supervisor, Emmanuel L. Moise can be reached on (571) 272-3865. 
The fax phone number for the organization where this application or proceeding 
is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from 
the Patent Application Information Retrieval (PAIR) system. Status information 
for published applications may be obtained from either Private PAIR or Public 
PAIR. Status information for unpublished applications is available through 
Private PAIR only. For more information about the PAIR system, see http://pair- 
direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll- 
free). If you would like assistance from a USPTO Customer Service 
Representative or access to the automated information system, call 800-786- 
9199 (IN USA OR CANADA) or 571-272-1000. 
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Primary Examiner 
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